b"Department of Homeland Security\n   Of\xef\xac\x81ce of Inspector General\n\n        Transportation Security Administration (TSA) \n\n         Vetting of Airmen Certificates and General \n\n            Aviation Airport Access and Security \n\n                         Procedures \n\n\n\n\n\nOIG-11-96                                           July 2011\n\x0c                                                          O/lice ofInspector General\n\n                                                          U.S. Department of Homeland Security\n                                                          Washington, DC 20528\n\n\n\n\n                                                         Homeland\n                                                         Security\n                                      July 7, 2011\n\n\nMEMORANDUM FOR:               John S. Pistole\n                              Administrator\n                              Transportation Security Administration\n\nFROM:                         Charles K. Edwards\n                              Acting Inspector General   ~4:~           ~'\n\nSUBJECT:                      Final Letter Report: Transportation Security Administration (FSA)\n                              Vetting ofAirmen Certificates and General Aviation Airport\n                              Access and Security Procedures\n                              DIG Report No. DIG-1l-96\n\nAttached for your information is our final letter report, Transportation Security Administration\n(FSA) Vetting ofAirmen Certificates and General Aviation Airport Access and Security\nProcedures. TSA did not provide formal comments to the report.\n\nConsistent with our responsibility under the Inspector General Act, we are providing copies of\nour report to appropriate congressional committees with oversight and appropriation\nresponsibility over the Department of Homeland Security. We will post the report on our\nwebsite for public dissemination.\n\nShould you have any questions, please call me, or your staff may contact Carlton 1. Mann,\nAssistant Inspector General for Inspections, at (202) 254-4205.\n\nAttachment\n\x0cBackground\nThe Federal Aviation Act of 1958, as amended, allows the Administrator of the Federal\nAviation Administration (FAA) to issue an airmen certificate to several categories of\naviation-related employees.1 Those categories of aviation workers include commercial,\nprivate, student, sport, recreational, airline transport, and foreign pilots; flight and ground\ninstructors; control tower operators; flight navigators, engineers and attendants; aircraft\nmechanics and repairmen; and parachute riggers. FAA requires applicants for these\ncertificates to submit biographic and other information on an application form, including\nwhether they have completed the necessary prelicensing training; whether they have been\nrecommended by an examiner or instructor; and, if foreign-licensed, which country\nissued the license.\n\nThe Aviation and Transportation Security Act requires that the Transportation Security\nAdministration (TSA) assess information in order to identify individuals who pose a\nthreat to transportation security and coordinate countermeasures with other federal\nagencies, including FAA.2 The Aviation and Transportation Security Act also requires\nTSA to work with FAA to take actions that may improve aviation safety or air carrier\noperations.3 In addition, the Intelligence Reform and Terrorism Protection Act of 2004\nrequires TSA to screen individuals against all appropriate records before FAA issues an\nairman certificate.4 If TSA determines that an individual holding an airman certificate\nposes a security threat, TSA may recommend that FAA immediately suspend and\nultimately revoke the certificate.\n\nAs part of its compliance with the Aviation and Transportation Security Act, FAA\ncurrently provides TSA with data from the Airmen Registry database daily. The data\ninclude biographic information on all airman certificate holders. In early 2009, TSA\nperformed a biographic name-based security threat assessment for every individual\nairman certificate issued by FAA. The name-based security threat assessment consisted\nof matching FAA biographic data, including variations, against the Terrorist Screening\nDatabase (TSDB) to determine whether credible information indicated that the individual\nholding a certificate is involved, or suspected of being involved, in any activity that could\npose a threat to transportation or national security. TSA analysts manually review\npotential matches identified by the automated matching process and, if necessary, refer\npotential matches to TSA\xe2\x80\x99s Threat Assessment and Credentialing Office (TTAC) for\ninvestigation. For example, if a name matches a TSDB record but the date of birth and\nother indicators are different, the analyst might recommend that FAA approve the\nindividual for an airman certificate without further investigation. Conversely, if the name\nand other indicators match the information on the watch list, the analyst would refer the\npotential match to TTAC for investigation. The more thorough investigation includes\ncoordinating information from TSA, FAA, and additional intelligence and law\n\n\n1\n  49 U.S.C. \xc2\xa7 44703(a).\n2\n  49 U.S.C. \xc2\xa7 114(f).\n3\n  49 U.S.C. \xc2\xa7 114(f)(13).\n4\n  49 U.S.C. \xc2\xa7 44903(j)(2)(D)(i).\n\n\n                                               2\n\n\x0cenforcement agencies to determine what kind of derogatory information exists for the\nindividual. TSA also coordinates with the National Counterterrorism Center (NCTC),\nTerrorist Screening Center, Terrorist Screening Operations Unit, Federal Bureau of\nInvestigation (FBI), and Joint Terrorism Task Force to review relevant intelligence and\nmake a determination regarding the airman certificate. Based on the results of this\ninvestigation, TSA determines whether the airman certificate should be revoked or\nsuspended for a domestic applicant, or withheld for a foreign applicant.\n\nIn 2007, FAA and TSA signed an interagency agreement establishing a continuous\nvetting process for all new and existing airman applicants and certificate holders, valid\nfor 10 years. TSA subsequently revetted all airman certificates issued through October\n2009. Since then, TSA has vetted both new FAA airman certificate applicants and\nholders on an ongoing basis. New applicants are vetted against the TSDB and new\nTSDB records are matched against current certificate holders to determine if new\nderogatory information exists.5\n\nResults of Review\nAs of February 2010, TSA had vetted approximately 4 million individuals who hold FAA\nairman certificates. These individuals have been vetted a total of nearly 6.8 million times\nagainst the TSDB, including the No Fly and Selectee subset lists. The TSDB is the U.S.\ngovernment\xe2\x80\x99s consolidated watch list of all known or appropriately suspected terrorists.\nAmong other things, TSA uses the No Fly and Selectee lists to identify individuals who\nare prohibited from boarding an aircraft or who are to receive additional physical\nscreening before boarding an aircraft. There are more FAA airman certificates than\ncertificate holders because some individuals hold multiple certificates. For example,\nsomeone with a flight instructor\xe2\x80\x99s certificate would also hold a pilot\xe2\x80\x99s certificate. In\naddition, because FAA does not purge its files of inactive certificates, only approximately\n1.3 million individuals hold active airman certificates.\n\nThe vetting process identified about 29,000 certificates that matched names in the TSDB.\nTSA analysts administratively determined that about 28,500 of these matches were\ninvalid, so they did not refer them for a security threat investigation. TSA performed a\nsecurity threat investigation on the remaining 506 that were determined to be true\nmatches and recommended that 27 airman certificates be revoked.\n\n\n\n\n5\n TSA said that it also matches airman certificate records against other name-based databases, and neither\nTSA nor FAA has the authority to conduct the FBI\xe2\x80\x99s Interstate Identification Index criminal history checks.\n\n\n                                                    3\n \n\n\x0cInconsistencies Exist in Airman Data, and the Validation Process Can Be Enhanced\n\nTSA\xe2\x80\x99s ability to vet airman records properly and thoroughly is limited by the quality of\nthe biographic information (e.g., name and date of birth) in the FAA Airmen Registry and\nthe databases against which the data are matched. Because FAA does not require unique\nidentifiers, such as a Social Security number, TSA may not identify U.S. citizens who\nhave provided false biographic information to receive an airman certificate.\n\nFAA Social Security Number Data Are Incomplete and Inaccurate\n\nNearly 550,000 of about 1.3 million individuals on the Airmen Registry who have active\ncertificates did not list a Social Security number that meets the Social Security\nAdministration\xe2\x80\x99s (SSA) minimum requirements. However, currently FAA is not legally\nable to collect the Social Security numbers of Airmen Registry applicants because of\nPrivacy Act restrictions. Specifically, Section 7 of the Privacy Act (5 U.S.C. \xc2\xa7 552a note\n(Disclosure of Social Security Number)) provides that it shall be unlawful for any federal,\nstate, or local government agency to deny to any individual any right, benefit, or privilege\nprovided by law because of such individual's refusal to disclose his Social Security\nnumber, unless the disclosure is required by federal statute.6 Furthermore, the same\nsection requires any such agency that requests an individual to disclose his Social\nSecurity number to inform that individual whether that disclosure is mandatory or\nvoluntary, by what statutory or other authority such number is solicited, and what uses\nwill be made of it.\n\nCurrently, Privacy Act forms given to applicants to the Airmen Registry state that\ndisclosure of the Social Security number is voluntary. Therefore, although the FAA\nAirmen Registry application form provides space for the applicant to provide his or her\nSocial Security number, FAA does not require applicants to provide it. When an applicant\ndoes not enter a Social Security number, a control number is automatically created.\n\nOf the nearly 750,000 active airman records that contain a potentially valid Social\nSecurity number, more than 15,000 records do not match SSA\xe2\x80\x99s name, Social Security\nnumber, gender, or date of birth records. In more than 8,000 additional records, the\nname, Social Security number, gender, and date of birth match SSA\xe2\x80\x99s records; however,\nSSA indicates that those individuals are deceased. If FAA does not collect and validate\nSocial Security number information for all applicable registrants, it is easier for\nindividuals to create false identities by using fictitious biographic information.\n\nTSA Vets FAA Records Against Subsets of Larger Terrorism and Criminal\nDatabases\n\nTSA does not vet airman certificate records against all criminal information. For\nexample, the FBI does not receive all outstanding international warrants, arrests, and\n\n\n6\n Another exception is if collection is pursuant to a system of records in existence before January 1, 1975,\nand disclosure was required prior to such date to verify an individual\xe2\x80\x99s identity.\n\n\n                                                     4\n\n\x0cconvictions, although it receives some conviction information from international law\nenforcement organizations such as Interpol. As a result, some individuals who have\nactive Airmen Registry certificates also have outstanding warrants or are known\nfugitives, as in the following examples:\n\n        An individual with an active commercial pilot\xe2\x80\x99s certificate was indicted under the\n        Drug Kingpin Act of 1999 and is serving 20 years in a foreign prison.\n        An individual with an active private pilot\xe2\x80\x99s certificate was indicted by federal\n        authorities for arson and has fled the country.\n        An individual with an active commercial pilot\xe2\x80\x99s license was charged with using\n        laundered money to purchase airplanes to smuggle narcotics.\n\nAlthough the FAA order on compliance and enforcement allows the FAA Administrator\nto issue an immediate order suspending or revoking a license in an emergency,\nemergency action of suspension or revocation will not be taken when the certificate\nholder is unable to exercise the privileges of the certificate, such as when he or she is in\nprison. In that case, FAA will issue a notice proposing certificate action instead of an\nemergency action, and suspension or revocation of the certificate will be decided by FAA\ncounsel, generally within 30 days.7 However, U.S. law requires FAA to revoke the\ncertificate of any airman convicted of violating certain federal or state statutes involving\ncontrolled substances in conjunction with an airplane when the airman served as an\nairman or was aboard the aircraft in connection with the offense.8 Even when there has\nbeen no conviction, FAA must revoke the license of an airman who knowingly carries\nout an activity punishable under these criminal statutes. Furthermore, FAA must amend,\nmodify, suspend, or revoke a certificate if TSA notifies FAA that the holder poses, or is\nsuspected of posing, a risk of air piracy or terrorism or poses a threat to airline or\npassenger safety.9\n\nSecurity and Access Procedures Are Different at Commercial and General Aviation\nAirports\n\nAirman certificates are not used to determine security and access at either commercial or\ngeneral aviation airports. At commercial airports, Security Identification Display Area\n(SIDA) badges are the primary credential used to determine access to air operations area\nsuch as runways, tarmacs, maintenance facilities, and other secure facilities. General\naviation airports are subject to fewer security regulations, but may institute their own\nsecurity programs to limit access to the secure areas.10\n\n\n\n\n7\n  FAA Order 2150.3B, FAA Compliance and Enforcement Program, effective October 1, 2007. \n\n8\n  49 U.S.C. \xc2\xa7 44710. \n\n9\n  49 U.S.C. \xc2\xa7 46111.\n\n10\n   On October 30, 2008, TSA proposed new rules for large aircraft that would apply at general aviation \n\nairports. However, these rules have not yet been implemented.\n \n\n\n\n                                                     5\n\n\x0cSecurity and Access Procedures at Commercial Airports\n\nAt commercial airports, TSA is required to perform a Security Threat Assessment of all\nindividuals who apply for airport-specific SIDA badges before the badge is issued. The\nassessment includes matches against the TSDB in an effort to determine whether the\nindividual applying for the badge matches terrorism information. The assessment also\nmatches biographic information from the applicant against the Systematic Alien\nVerification for Employment database to determine whether the applicant is legally\npermitted to work in the United States. In addition to these automated checks, airport\nsecurity managers and air operators are required to perform a criminal history\nbackground check to determine whether the applicant has a disqualifying criminal history\nto preclude access to an airport\xe2\x80\x99s secured areas.\n\nCommercial airports also restrict access to secured areas by using perimeter fencing as\nwell as secured doors and checkpoints. Many checkpoints at commercial airports\nincorporate magnetometers or enhanced body imaging equipment to screen individuals.\n\nSecurity and Access Procedures at General Aviation Airports\n\nGeneral aviation encompasses a wide range of activities, such as pilot training, business\nand personal charter flights, emergency medical services, and sightseeing. Operations at\nthe Nation\xe2\x80\x99s 19,000 general aviation airports and helipads, only about a third of which are\navailable for public use, range from short-distance flights in single-engine light aircraft to\nlong-distance international flights in privately owned jets, and from emergency aero\xc2\xad\nmedical helicopter operations to airship displays at sporting events. The sole common\ncharacteristic of general aviation operations is that flights are on demand, rather than\nroutinely scheduled.\n\nAirman certificates were not required or checked before an individual is granted access to\nair operations areas at the general aviation airports we visited. In addition, TSA officials\ntold us TSA does not have the authority to issue security regulations for general aviation\nairports except for facilities located within Washington, DC, Metropolitan Area Flight\nRestricted Zone, roughly a 15-mile circle around Ronald Reagan Washington National\nAirport (Reagan National). Although TSA has published the Security Guidelines for\nGeneral Aviation Airports that contain federally endorsed security procedures, the\nprimary providers of aviation services at most general aviation airports are not subject to\nfederal security regulations, and TSA\xe2\x80\x99s Security Guidelines are not mandatory.11 For\nexample, TSA recommends that \xe2\x80\x9cthe identity of an individual renting an aircraft should\nbe verified by checking an individual\xe2\x80\x99s government-issued photo identification, as well as\nhis or her airmen\xe2\x80\x99s and current medical certificates.\xe2\x80\x9d However, the general aviation\noperators at two major general aviation airports and one smaller general aviation airport\nnear large East Coast metropolitan areas told us they do not require an individual to\n\n\n11\n  In written technical comments on this report, TSA also noted that standard security protocols for all\n19,000 general aviation airports may be unfeasible given their range of sizes, locations, and operational\ncapabilities.\n\n\n                                                      6\n\n\x0cprovide either a government-issued identification or a valid airman certificate to board or\nfly a privately owned plane. General aviation operations personnel at those airports told\nus that a corporate pilot, for example, would be required only to show corporate\nidentification to access the air operations area.\n\nSome general aviation facilities restrict access to the air operations area with fencing or\nby monitoring doors, gates, and other entry points. However, access limitations\nprocedures are not required. For example, we visited two general aviation airports in\nclose proximity to each other in a large metropolitan area. While the first airport has a\nfenced perimeter, and a pilot or passenger is either physically escorted to an aircraft or\nphysically observed until reaching an aircraft after entering the air operations area, the\nsecond airport does not a have a fence that encompasses the entire perimeter of the\nairport. Thus, at the second airport, unauthorized access to planes on the tarmac without\nthe approval of an airport official can occur.\n\nAdditional Security Requirements for Direct General Aviation Access to Reagan\nNational Airport\n\nAfter discussions with other Department of Homeland Security components, the\nDepartment of Defense, and other federal agencies, TSA issued an interim final rule in\n2005 that amended and added aviation security regulations allowing general aviation\noperations at Reagan National to resume after the restrictions imposed post-September\n11, 2001.12 Taking into consideration the special security needs of Reagan National, the\nregulations require operators to comply with specific security procedures. FAA\noperational procedures allow 48 general aviation flights per day in and out of Reagan\nNational. All general aviation flights must meet the security measures set forth in the\nWashington Reagan National Airport Access Standard Security Program. To meet\nsecurity measures, TSA must complete a series of steps that include an inspection of\ncrew, passengers, accessible and checked property, and the aircraft. Passenger and crew\nmanifests must be submitted 24 hours in advance of each flight. TSA must execute\nname-based security threat assessments for all crewmembers and passengers and\nfingerprint-based criminal history records check for crewmembers. An armed security\nofficer must be onboard each flight unless a Federal Air Marshal is onboard or the\naircraft is flying to or from Reagan National without passengers. All Washington Reagan\nNational Airport Access Standard Security Program flights must depart from an approved\ngateway location (a Fixed Base Operator that has been approved by TSA as a last point of\ndeparture for flights into Reagan National). According to TSA, there are 57 approved\ngateway locations.\n\n\n\n\n12\n  Ronald Reagan Washington National Airport: Enhanced Security Procedures for Certain Operations;\nInterim Final Rule. 49 C.F.R. Parts 1520, 1540, and 1562 (70 FR 41586; July 19, 2005).\n\n\n                                                 7\n\n\x0cAppendix A\nPurpose, Scope, and Methodology\n                   The Chairman and Ranking Member of the Senate Committee on\n                   Commerce, Science, and Transportation, and the Chairman and\n                   Ranking Member of its Subcommittee on Aviation Operations,\n                   Safety, and Security requested that we review current TSA vetting\n                   procedures for registrants applying for airman certificates, as well\n                   as access and security procedures at civilian general aviation\n                   airports. They specifically requested that we review TSA and\n                   general aviation airport procedures to determine (1) how TSA\n                   currently vets FAA airman certificate applicants, (2) whether there\n                   is evidence that current vetting procedures can be enhanced, and\n                   (3) what security procedures are in place to restrict access at\n                   civilian general aviation airports.\n\n                   To determine how TSA vets FAA airman certificate applicants, we\n                   interviewed FAA and TSA personnel, reviewed vetting agreements\n                   between FAA and TSA, and reviewed vetting procedure\n                   documents and standards at TSA.\n\n                   To determine whether there is evidence that vetting procedures can\n                   be enhanced, we requested all TSA data for the FAA Airmen\n                   Registry and matched the data against the SSA database to\n                   determine the extent to which TSA records could be validated\n                   against SSA data.\n\n                   To determine what security procedures exist to restrict access at\n                   civilian general aviation airports, we visited several general\n                   aviation airports. We also interviewed TSA, FAA, and general\n                   aviation service providers about standard access and security\n                   procedures at general aviation airports.\n\n                   We briefed TSA concerning the results of fieldwork and the\n                   information summarized in this report.\n\n                   We conducted this performance audit between February and\n                   December 2010 pursuant to the Inspector General Act of 1978, as\n                   amended, and according to generally accepted government\n                   auditing standards. Those standards require that we plan and\n                   perform the audit to obtain sufficient, appropriate evidence to\n                   provide a reasonable basis for our findings and conclusions based\n                   upon our audit objectives. We believe that the evidence obtained\n                   provides a reasonable basis for our findings and conclusions based\n                   upon our audit objectives.\n\n                   We appreciate the efforts by TSA management and staff to provide\n                   the information and access necessary to accomplish this review.\n\n\n\n\n                                         8\n \n\n\x0cAppendix B\nManagements Comments to the Draft Letter Report\n\n                   TSA did not provide formal management comments to the draft\n                   letter report.\n\n\n\n\n                                       9\n \n\n\x0cAppendix C\nMajor Contributors to this Report\n                    John Kelly, Director\n                    Scott Wrightson, Audit Manager\n                    Joshua Wilshere, Auditor\n\n\n\n\n                                       10\n \n\n\x0cAppendix D\nReport Distribution\n                      Department of Homeland Security\n\n                      Secretary\n                      Deputy Secretary\n                      Chief of Staff\n                      Deputy Chief of Staff\n                      General Counsel\n                      Executive Secretariat\n                      Director, GAO/OIG Liaison Office\n                      Assistant Secretary for Office of Policy\n                      Assistant Secretary for Office of Public Affairs\n                      Assistant Secretary for Office of Legislative Affairs\n                      Administrator, Transportation Security Administration\n                      Director, TSA\xe2\x80\x99s GAO/OIG Audit Liaison Office\n                      Director of Local Affairs, Office of Intergovernmental Affairs\n\n                      Office of Management and Budget\n\n                      Chief, Homeland Security Branch\n                      DHS OIG Budget Examiner\n\n                      Congress\n\n                      Senate Committee on Homeland Security and Governmental\n                      Affairs,\n                      Senate Committee on Appropriations\n                      House Committee on Homeland Security\n                      House Committee on Appropriations\n\n\n\n\n                                           11\n \n\n\x0cADDITIONAL INFORMATION AND COPIES\n\nTo obtain additional copies of this report, please call the Office of Inspector General (OIG) at (202) 254-4100,\nfax your request to (202) 254-4305, or visit the OIG web site at www.dhs.gov/oig.\n\n\nOIG HOTLINE\n\nTo report alleged fraud, waste, abuse or mismanagement, or any other kind of criminal or noncriminal\nmisconduct relative to department programs or operations:\n\n\xe2\x80\xa2 Call our Hotline at 1-800-323-8603;\n\n\xe2\x80\xa2 Fax the complaint directly to us at (202) 254-4292;\n\n\xe2\x80\xa2 Email us at DHSOIGHOTLINE@dhs.gov; or\n\n\xe2\x80\xa2 Write to us at:\n       DHS Office of Inspector General/MAIL STOP 2600,\n       Attention: Office of Investigations - Hotline,\n       245 Murray Drive, SW, Building 410,\n       Washington, DC 20528.\n\n\nThe OIG seeks to protect the identity of each writer and caller.\n\x0c"